Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/7UWqWwhEuduDW6LEskJRff9Q4Rk.roa
File: 7UWqWwhEuduDW6LEskJRff9Q4Rk.roa (raw, json)
Hash identifier: lO2Wc8kbbPoe/OakkUacTMoGWSCZuhk8XZW3izOKPcc=
Subject key identifier: ED:45:AA:5B:08:44:B9:DB:83:5B:A2:C4:B2:42:51:7D:FF:50:E1:19
Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Certificate serial: 01835504A2381BF6B4632967C4A6F98E6F15
Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/7UWqWwhEuduDW6LEskJRff9Q4Rk.roa
Signing time: Mon 19 Sep 2022 09:11:50 +0000
ROA not before: Mon 19 Sep 2022 09:11:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 45.158.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:55:04:a2:38:1b:f6:b4:63:29:67:c4:a6:f9:8e:6f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Validity
Not Before: Sep 19 09:11:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed45aa5b0844b9db835ba2c4b242517dff50e119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:2e:4c:71:16:6e:fc:4b:ee:2f:80:e3:66:
b5:50:5f:cd:92:b6:1b:8c:1b:53:88:dc:ab:46:a5:
77:37:8e:15:2f:7c:35:66:b6:65:5a:b2:2e:56:ff:
a1:30:14:1d:b1:52:03:e0:21:85:a6:00:2a:e5:c3:
2a:96:7a:f7:57:6c:b0:54:92:c2:ea:7b:79:71:1e:
b9:c3:f7:54:f4:cb:08:01:cd:ce:ce:5b:20:13:97:
50:c7:d2:9d:24:72:82:10:4c:60:1e:ed:9a:49:37:
71:aa:5c:4a:9f:e5:e8:d3:cf:25:5c:ea:76:b3:6b:
4d:92:d6:d8:31:7e:ea:0f:96:e6:44:2e:72:ae:34:
74:b8:ad:0e:02:cf:22:07:15:0c:e6:98:5b:72:a6:
f8:a0:11:b1:02:60:22:cb:14:fd:a7:fd:47:a6:bd:
38:d1:24:0d:be:0b:f7:f7:0a:3d:0d:a6:26:7a:23:
8b:20:96:44:eb:f1:9c:9d:a2:0e:02:df:fe:0a:fc:
15:f3:35:e5:41:7d:db:34:b0:15:f8:e5:f4:eb:e6:
e1:dd:45:df:66:a0:c0:77:c8:a5:ec:aa:cc:ff:9b:
f8:cc:bc:1c:0d:23:8c:5a:3e:73:b1:45:e2:47:f7:
ba:6d:d5:d7:23:1b:5e:2a:ee:4e:20:a1:6f:85:02:
62:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:45:AA:5B:08:44:B9:DB:83:5B:A2:C4:B2:42:51:7D:FF:50:E1:19
X509v3 Authority Key Identifier:
keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/7UWqWwhEuduDW6LEskJRff9Q4Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.62.0/23
Signature Algorithm: sha256WithRSAEncryption
50:e8:c1:4f:fc:84:ae:a9:f2:43:f4:c6:62:3f:6f:35:c4:7f:
17:61:fc:20:95:54:9a:c6:cd:e5:0b:ea:1b:96:30:08:a8:02:
57:9a:c2:96:62:99:ce:d3:f9:0b:64:a4:f2:71:a8:e6:dd:b1:
1e:b8:02:ba:0b:fd:5a:b3:9c:33:63:50:d9:a1:25:db:64:b9:
ef:06:02:21:79:41:51:8e:99:56:9d:71:49:b2:3b:77:9c:7d:
23:b6:7e:9b:27:79:f9:95:09:8f:a8:a6:7f:7d:f4:df:25:f0:
e9:75:27:18:95:25:c2:c8:e7:27:29:77:c5:72:5a:e9:af:1e:
6b:dd:9a:ce:0f:45:35:e5:d8:75:bb:2a:64:cb:09:09:ca:0e:
78:7b:a8:1e:4c:88:f3:d6:eb:8a:77:af:ab:d9:2c:6d:d4:db:
79:a0:98:f6:cb:4b:3f:ee:69:b1:75:36:18:c7:0d:3e:01:8b:
79:e9:f9:08:17:b9:fd:ce:e4:aa:35:56:92:f0:96:f7:43:6a:
4c:69:90:fc:11:a5:91:77:54:9b:8b:fc:aa:a3:96:0c:62:4c:
8d:f7:69:af:15:66:c3:6c:29:10:83:fb:3f:92:4b:be:52:ed:
20:ff:58:44:f4:f2:f7:a6:35:c5:13:d2:07:3c:e1:3b:ab:97:
c9:f8:91:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:16 2024 by rpki-client on console-fra.rpki-client.org